CVE-2022-46463

Name of the Vulnerable Software and Affected Versions Harbor versions 1.X.X through 2.5.3

Description An access control issue allows attackers to access public and private image repositories without authentication. The vendor states this behavior is documented as a feature. There is no information about the number of potentially affected devices worldwide or any real-world incidents where this issue was exploited. The issue involves accessing repositories without proper authorization.

Recommendations For Harbor versions 1.X.X through 2.5.3, at the moment, there is no information about a newer version that contains a fix for this vulnerability.